var createError = require("http-errors");
var express = require("express");
var path = require("path");
var cookieParser = require("cookie-parser");
var logger = require("morgan");

var indexRouter = require("./routes/index");
var usersRouter = require("./routes/users");
const JWT = require("./utils/JWT");
const UserRouter = require("./routes/admin/UserRouter");
const NewsRouter = require("./routes/admin/NewsRouter");
const ProductRouter = require("./routes/admin/ProductRouter");

const webNewsRouter = require("./routes/web/NewsRouter");
const webProductRouter = require("./routes/web/ProductRouter");

var app = express();

// view engine setup
app.set("views", path.join(__dirname, "views"));
app.set("view engine", "jade");

app.use(logger("dev"));
app.use(express.json());
app.use(express.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, "public")));

app.use("/", indexRouter);
app.use("/users", usersRouter);

/**
 *  企业官网用的接口
 * */

app.use(webNewsRouter);
app.use(webProductRouter);

/**
 * /adminapi/* - 后台系统用的接口
 * /webapi/*   - 企业官网用的接口
 * */
app.use((req, res, next) => {
  // 如果token授权有效，next()
  // 如果token授权过期，返回401错误

  // 非登录接口，需校验；登录接口一开始是没有token的，所以需要排除掉登录接口
  if (req.url === "/adminapi/user/login") {
    next();
    return;
  }

  // 前端axios的Authorization设置为 `Bearer ${token}`
  const token = req.headers["authorization"].split(" ")[1];

  // 存在token，则校验token
  if (token) {
    // token未过期，重新生成一个新的token(有效期重置)；
    // token过期，给前端提示401；
    var payload = JWT.verify(token);
    if (payload) {
      const newToken = JWT.generate(
        {
          _id: payload._id,
          username: payload.username,
        },
        "1d" // token-过期时间：一天
      );
      // 刷新页面重置token有效时间
      res.header("Authorization", newToken);
      next();
    } else {
      res.status(401).send({ errCode: "-1", errorInfo: "token过期" });
    }
  }
});

app.use(UserRouter); // 用户
app.use(NewsRouter); // 新闻
app.use(ProductRouter); // 产品

// catch 404 and forward to error handler
app.use(function (req, res, next) {
  next(createError(404));
});

// error handler
app.use(function (err, req, res, next) {
  // set locals, only providing error in development
  res.locals.message = err.message;
  res.locals.error = req.app.get("env") === "development" ? err : {};

  // render the error page
  res.status(err.status || 500);
  res.render("error");
});

module.exports = app;
